Which utility creates rules in /etc/host.deny to prevent access to the SSH server during a hacking attack?

DenyHosts is a utility specifically designed to help secure SSH servers by monitoring login attempts and creating rules in the /etc/hosts.deny file to effectively block host access. When an unauthorized access attempt is detected, DenyHosts can automatically add the offending IP address to this file, thereby preventing further login attempts from that address.

While utilities like Fail2ban also provide similar functionality, it primarily uses the iptables firewall to block IP addresses based on log entries related to various services, including SSH. On the other hand, iptables and ufw (Uncomplicated Firewall) are firewall management tools that can restrict access but do not specifically create entries in /etc/hosts.deny for denying SSH access directly.

DenyHosts focuses solely on securing SSH by adding entries to the hosts.deny file, making it uniquely tailored for this specific purpose during hacking attack scenarios.